$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa File: 3230322e3135342e31362e302f32342d3234203d3e2034343334.roa (raw, json) Hash identifier: vKyqlEzg+lvdvHXGjSmu3QaN4+K+ytrNGj7etZcdkAE= Subject key identifier: 36:19:A1:56:8F:DD:E7:09:71:B3:2B:B1:C9:C6:C3:DF:1D:1E:B5:D1 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 23E971834617374A7F7FDB1947C728AAA7DE1D60 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa Signing time: Wed 13 Aug 2025 11:00:01 +0000 ROA not before: Wed 13 Aug 2025 10:55:01 +0000 ROA not after: Wed 12 Aug 2026 11:00:01 +0000 asID: 4434 IP address blocks: 202.154.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e9:71:83:46:17:37:4a:7f:7f:db:19:47:c7:28:aa:a7:de:1d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 13 10:55:01 2025 GMT Not After : Aug 12 11:00:01 2026 GMT Subject: CN=3619A1568FDDE70971B32BB1C9C6C3DF1D1EB5D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:0e:9a:fe:e5:bf:08:2b:c5:46:34:c3:f9: 31:54:35:6a:25:3d:2c:64:23:da:8a:ba:77:28:31: 33:c1:fd:98:d5:ea:a4:61:6a:f0:c5:3f:d7:06:da: 3c:5e:a9:44:81:9c:15:0d:97:89:ec:57:6b:db:c3: 73:23:bc:03:65:31:00:dc:e9:0d:70:a0:1b:86:95: 31:fe:d9:87:4e:c9:e8:8f:7f:2f:11:9c:57:e9:23: c4:84:a2:3d:6c:25:90:b5:a1:05:a4:26:c6:1d:ff: 4c:4b:1c:64:88:21:be:ec:78:5b:ce:34:20:51:96: 57:dd:cf:7a:cf:7b:ad:fc:eb:ec:b7:85:7f:94:f6: 22:e5:e8:7b:90:a1:a3:98:aa:a3:20:dc:18:d0:7e: 72:c2:0e:74:eb:ca:82:2e:cb:47:00:29:ec:f8:17: a7:84:b2:92:c3:8f:5c:e1:2e:c3:1d:20:fa:1c:13: 6c:9c:38:c2:2e:de:cc:4a:bd:e0:08:dc:1d:a0:cd: ea:ca:b9:85:84:19:91:7a:f6:98:00:12:74:b0:08: 30:ce:30:de:cc:81:1e:e5:8f:97:14:c0:82:d8:e9: 96:2e:2f:3c:4a:63:0a:98:91:69:de:87:ad:9c:eb: 24:cb:38:b0:81:39:10:c5:6d:89:ed:7f:60:bf:a3: f0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:19:A1:56:8F:DD:E7:09:71:B3:2B:B1:C9:C6:C3:DF:1D:1E:B5:D1 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.16.0/24 Signature Algorithm: sha256WithRSAEncryption a3:13:2e:bf:e9:fc:2f:85:a5:e7:7a:2f:59:4f:1f:33:ae:23: 01:0d:48:60:44:00:5e:dc:59:6b:74:0f:c6:f0:35:85:6f:9b: 4e:1b:08:52:ef:1e:00:03:e6:eb:ad:19:a8:35:c7:29:d7:8f: c0:2f:4c:e2:75:f9:f2:f2:c3:8b:a9:f9:c7:9f:5b:b4:fa:cc: d5:b0:a8:6c:1f:4f:6b:db:74:e6:9e:70:7b:80:44:f5:65:d1: 21:ce:88:63:ac:39:9e:59:00:66:0b:21:64:aa:ab:5b:b0:be: 84:6d:1c:e5:2c:6d:c0:4c:6c:4d:53:b8:3e:35:b5:e8:07:d8: ac:4f:94:86:6f:65:1c:dd:a1:83:c2:b3:ef:69:13:ef:40:e6: 37:08:6b:09:40:a4:6d:b6:2c:9c:8f:4e:be:4d:52:ea:86:01: c0:86:6b:f7:15:01:db:a3:c2:65:46:ac:0f:5b:b1:b6:12:56: 3d:4e:e7:e0:1d:26:eb:0a:c0:eb:c9:e3:26:51:35:9f:aa:bd: e2:7a:82:66:46:40:f8:53:ea:af:32:7a:76:ea:74:e4:d1:29: 79:b4:c6:ca:b5:b5:58:bc:45:3c:a1:cd:ca:af:65:d6:3e:d3: 9a:76:6b:2f:a0:77:f7:89:a4:07:44:7c:8f:6b:e5:33:ae:40: 20:20:22:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUI+lxg0YXN0p/f9sZR8coqqfeHWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA4MTMxMDU1MDFaFw0yNjA4MTIxMTAwMDFaMDMxMTAvBgNV BAMTKDM2MTlBMTU2OEZEREU3MDk3MUIzMkJCMUM5QzZDM0RGMUQxRUI1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNaA6a/uW/CCvFRjTD+TFUNWol PSxkI9qKuncoMTPB/ZjV6qRhavDFP9cG2jxeqUSBnBUNl4nsV2vbw3MjvANlMQDc 6Q1woBuGlTH+2YdOyeiPfy8RnFfpI8SEoj1sJZC1oQWkJsYd/0xLHGSIIb7seFvO NCBRllfdz3rPe6386+y3hX+U9iLl6HuQoaOYqqMg3BjQfnLCDnTryoIuy0cAKez4 F6eEspLDj1zhLsMdIPocE2ycOMIu3sxKveAI3B2gzerKuYWEGZF69pgAEnSwCDDO MN7MgR7lj5cUwILY6ZYuLzxKYwqYkWneh62c6yTLOLCBORDFbYntf2C/o/DbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNhmhVo/d5wlxsyuxycbD3x0etdEwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKmhAwDQYJKoZIhvcN AQELBQADggEBAKMTLr/p/C+Fped6L1lPHzOuIwENSGBEAF7cWWt0D8bwNYVvm04b CFLvHgAD5uutGag1xynXj8AvTOJ1+fLyw4up+cefW7T6zNWwqGwfT2vbdOaecHuA RPVl0SHOiGOsOZ5ZAGYLIWSqq1uwvoRtHOUsbcBMbE1TuD41tegH2KxPlIZvZRzd oYPCs+9pE+9A5jcIawlApG22LJyPTr5NUuqGAcCGa/cVAdujwmVGrA9bsbYSVj1O 5+AdJusKwOvJ4yZRNZ+qveJ6gmZGQPhT6q8yenbqdOTRKXm0xsq1tVi8RTyhzcqv ZdY+05p2ay+gd/eJpAdEfI9r5TOuQCAgInc= -----END CERTIFICATE-----Generated at Sat Aug 23 15:47:51 2025 by rpki-client